$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: 7YAx60BJC+GxVwYDKLFNUFHFJfWkS8enkiu2swZvEaw= Subject key identifier: A0:6E:3A:5F:F4:BB:47:D2:C6:37:59:C5:2E:EC:C2:12:62:3D:31:65 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 35E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 357C Signing time: Sun 22 Mar 2026 14:50:55 +0000 Manifest this update: Sun 22 Mar 2026 14:50:55 +0000 Manifest next update: Sun 29 Mar 2026 14:50:55 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: KXz08LEzT2vw2psX7W1NusNj7a1tsPwFPg5KTzyqrb4=) 2: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: qLKIOz6Oedhwx38zJO/77LtAdjmKeuJ/j9qSOecidn0=) 3: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: usfpiMLWoGDExv0ZzDkffe8BVX1FZLRCU+Dn0/pmF+g=) 4: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: UKXFh7gTm0rXHnOIQY0kDYmGOiQsiOQkbThjpV/y9Uk=) 5: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: 81ReA4BHk/lxP9lEIuQUr4XFnT42WFD0y3bTKzIXKJE=) 6: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: DAjpYy2F7JuENdM1mCWzZ4UuisI9F+H32xQyrUo660o=) 7: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: 8UZTwXBUXA7yxIQmBCYd7utQyxqxmd+gxoz97Gybm9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13799 (0x35e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: Mar 22 14:50:55 2026 GMT Not After : Mar 29 14:50:55 2026 GMT Subject: CN=69c001cf-1b71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:45:d7:93:b8:b4:75:a1:a7:11:6e:76:fa:bb: 03:05:ba:02:0a:d5:8e:5e:bc:53:1a:b8:76:22:83: 2f:dd:b7:61:9e:ea:cf:97:2f:4a:96:cb:af:95:eb: 63:1a:2f:ef:0f:f5:6c:04:9d:c9:51:2c:ec:e9:e7: 30:9a:fc:13:71:e4:51:14:09:64:8b:5e:b0:68:4d: 36:0b:7a:c8:39:b9:8b:e9:a1:98:bc:be:c6:b5:18: cb:86:d5:df:ec:14:af:2d:a3:40:90:86:79:ff:1d: 25:35:2f:bc:2c:00:67:16:e0:8c:4e:7b:cc:95:b2: e3:ec:f7:96:10:06:dc:d1:d3:e4:6c:fc:0b:08:e6: 44:32:f0:67:4c:07:54:22:15:bd:f5:7f:02:47:fe: f2:e5:34:06:c4:b1:46:e9:09:43:69:5b:e2:d8:a4: e5:2e:a9:f2:69:52:b2:d2:b9:d5:07:4d:2c:91:c0: 4c:45:bb:17:12:ad:f7:fc:48:cf:18:4e:6a:9d:78: 86:aa:e0:5d:3c:65:99:f4:36:0c:c7:95:1f:e4:c3: d2:ff:67:46:19:b6:d8:81:8d:3f:79:df:d0:8b:30: 8c:14:c2:44:d4:7e:86:51:bc:07:30:c7:19:a2:8e: 1a:b6:aa:31:e4:42:5f:de:70:81:40:b6:1e:b1:ff: e9:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:6E:3A:5F:F4:BB:47:D2:C6:37:59:C5:2E:EC:C2:12:62:3D:31:65 X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:47:d1:b8:b0:28:6c:71:0e:34:fa:89:33:53:67:5a:f9:68: 84:57:9e:53:43:f2:71:be:d2:65:67:8e:b5:ba:85:3b:9a:9c: 16:06:44:e1:4b:d9:fd:1b:8a:eb:0e:38:2a:03:5d:e4:b7:0a: 34:52:ab:e6:d0:97:79:e5:e8:22:17:64:45:ba:4e:4a:eb:65: 6a:a8:43:91:c6:88:c5:ba:52:5c:13:e6:c5:cd:c1:76:73:b2: 39:f6:4d:34:76:b4:6a:67:bf:69:b3:10:80:31:1a:3c:cf:18: a8:77:c3:04:fa:12:e4:36:93:33:9e:91:47:00:ae:c3:58:70: 91:2f:54:06:bc:13:c7:cc:2c:0f:b7:32:8b:56:69:25:10:38: 2c:e4:a6:d2:47:c7:3e:f4:01:6d:81:59:06:d9:d5:cd:33:8d: fd:7c:cf:0f:e8:2c:be:72:f4:6b:b5:48:1c:20:4d:b8:93:77: 61:d2:b4:eb:ab:0f:31:b5:a8:d0:ce:33:a0:7f:3a:de:fd:32: 3f:5d:3b:16:d0:0b:c9:33:f2:b1:8d:79:4e:6e:19:24:80:82: fe:60:70:a1:32:ec:2d:38:55:80:30:f4:22:ff:fe:47:95:4c: b8:b4:15:18:91:13:4c:c5:52:98:fe:59:5f:06:a9:58:bd:c1: f0:a8:0c:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjYwMzIyMTQ1MDU1WhcNMjYwMzI5MTQ1MDU1WjAYMRYwFAYD VQQDEw02OWMwMDFjZi0xYjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0XXk7i0daGnEW52+rsDBboCCtWOXrxTGrh2IoMv3bdhnurPly9Klsuvletj Gi/vD/VsBJ3JUSzs6ecwmvwTceRRFAlki16waE02C3rIObmL6aGYvL7GtRjLhtXf 7BSvLaNAkIZ5/x0lNS+8LABnFuCMTnvMlbLj7PeWEAbc0dPkbPwLCOZEMvBnTAdU IhW99X8CR/7y5TQGxLFG6QlDaVvi2KTlLqnyaVKy0rnVB00skcBMRbsXEq33/EjP GE5qnXiGquBdPGWZ9DYMx5Uf5MPS/2dGGbbYgY0/ed/QizCMFMJE1H6GUbwHMMcZ oo4atqox5EJf3nCBQLYesf/pZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKBuOl/0 u0fSxjdZxS7swhJiPTFlMB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQEfRuLAobHEONPqJM1NnWvlohFeeU0Pycb7SZWeOtbqFO5qcFgZE4UvZ/RuK 6w44KgNd5LcKNFKr5tCXeeXoIhdkRbpOSutlaqhDkcaIxbpSXBPmxc3BdnOyOfZN NHa0ame/abMQgDEaPM8YqHfDBPoS5DaTM56RRwCuw1hwkS9UBrwTx8wsD7cyi1Zp JRA4LOSm0kfHPvQBbYFZBtnVzTON/XzPD+gsvnL0a7VIHCBNuJN3YdK066sPMbWo 0M4zoH863v0yP107FtALyTPysY15Tm4ZJICC/mBwoTLsLThVgDD0Iv/+R5VMuLQV GJETTMVSmP5ZXwapWL3B8KgMpg== -----END CERTIFICATE-----Generated at Sun Mar 22 18:56:21 2026 by rpki-client